Husnu Demir a écrit :
>
> But, raw table cannot see the conntrack.
And vice versa. This is precisely its main purpose.
> I could not find any reference
> in MAN of iptables(-extentions) about conntrack and raw table
Really ? Maybe you missed that quote from the iptables manpage :
raw:
This table is used mainly for configuring exemptions from
connection tracking in combination with the NOTRACK target.
It registers at the netfilter hooks with higher priority and
is thus called before ip_conntrack, or any other IP tables.
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
